package com.feelingjos.security.browser;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.apache.commons.lang.StringUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.http.HttpStatus;
import org.springframework.security.web.DefaultRedirectStrategy;
import org.springframework.security.web.RedirectStrategy;
import org.springframework.security.web.savedrequest.HttpSessionRequestCache;
import org.springframework.security.web.savedrequest.RequestCache;
import org.springframework.security.web.savedrequest.SavedRequest;
import org.springframework.social.connect.Connection;
import org.springframework.social.connect.web.ProviderSignInUtils;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.ResponseStatus;
import org.springframework.web.bind.annotation.RestController;
import org.springframework.web.context.request.ServletWebRequest;

import com.feelingjos.security.browser.support.SimpleResponse;
import com.feelingjos.security.browser.support.SocialUserInfo;
import com.feelingjos.security.core.properties.SecurityProperties;

@RestController
public class BrowserSecurityController {
	
	private Logger logger=LoggerFactory.getLogger(getClass());
	
	private RequestCache requestCache=new HttpSessionRequestCache();
	
	private RedirectStrategy redirectStrategy=new DefaultRedirectStrategy();
	
	@Autowired
	private SecurityProperties corecofnig;
	
	@Autowired
	private ProviderSignInUtils providerSignInUtils;
	
	@RequestMapping("/authentication/require")
	@ResponseStatus(code=HttpStatus.UNAUTHORIZED)
	public SimpleResponse requireAuthentication(HttpServletRequest request,HttpServletResponse response) throws Exception {
		SavedRequest saveRequest = requestCache.getRequest(request, response);
		
		if(saveRequest !=null) {
			String targetUrl=saveRequest.getRedirectUrl();
			logger.info("引发跳转的请求是:"+targetUrl);
			if(StringUtils.endsWithIgnoreCase(targetUrl, ".html")) {
				redirectStrategy.sendRedirect(request, response, corecofnig.getBrowser().getLoginPage());
			}
		}
		
		return new SimpleResponse("访问的服务需要身份认证，请到登录页");
	}
	
	@GetMapping("/social/user")
	public SocialUserInfo getSocialUserInfo(HttpServletRequest request) {
		SocialUserInfo userinfo=new SocialUserInfo();
		Connection<?> connection = providerSignInUtils.getConnectionFromSession(new ServletWebRequest(request));
		userinfo.setProviderId(connection.getKey().getProviderId());
		userinfo.setProviderUserId(connection.getKey().getProviderUserId());
		userinfo.setNickname(connection.getDisplayName());
		userinfo.setHeadimg(connection.getImageUrl());
		return userinfo;
		
	}
	
	@GetMapping("/session/invalid")
	@ResponseStatus(code=HttpStatus.UNAUTHORIZED)
	public SimpleResponse seesionInvalid() {
		String message="session失效";
		return new SimpleResponse(message);
	}
	

}
